Wednesday, May 6, 2020

Security and Privacy Issues in Internet of Things †Free Samples

Question: Discuss about the Security and Privacy Issues in Internet of Things. Answer: Introduction This report is based on topic of security and privacy issues in Internet of Things (IoT). It is a system of interrelated computing devices. Various devices that are used at personal and business level to perform different activities are connected through IoT. These devices can be home appliances, medical devices, computer devices, smart phones and other electronic devices, mechanical and digital machines. All these devices are connected through IoT and store and transfer data from one device to another. IoT is an enhanced version of information technology and it consists of various benefits. There are various industries that are frequently using IoT and these industries are manufacturing, utilities, hospitality, and healthcare, defense and banks etc. If at one side, IoT has some benefits, then on other side, it has some issues of security and privacy that are encountered by its users. Users send their personal data through devices that are connected with Inter of Things (IoT). Theref ore, security of these devices is necessary so that users can transfer their data without worry of hacking and phishing attacks. The purpose of making this report is to emphasize on challenges of security and privacy in IoT, its problems, its relevant technologies, impact of issues of IoT on real life of users and other essential points (Datafloq.com, 2017). Challenges of Security and Privacy in Internet of Things The essential challenges of security and privacy of Internet of Things are listed as below: Privacy Security Development Standards Privacy There are multiple devices are connected with IoT and with these devices huge amount of data is transferred over network by users. Therefore, privacy of this huge amount of data is a challenging factor for developers of IoT. Hackers always keep their eye on this type of networks that transfer hefty data and try to hack these networks. That is why, it is major accountability of hackers to maintain high level of privacy (Forbes.com, 2017). Security Another essential challenge of IoT is security of data. Hacking, malware attacks, phishing and data breaching etc. are commonly encountered security attacks and these are implemented on databases, networks and computer systems to access information in unauthorized way by cyber-criminals. In this case, if security of data will not be maintained in appropriately by IoT developers then it may cause problems of users (IoT Agenda, 2017). Development There are various emerging economies where it is promised by IoT to deliver effective social and economic benefits. But due to critical challenges of IoT and lack of market readiness, technical skills and policy requirements in these areas, IoT development is low among users in these areas. Therefore, it is also a challenging factor for IoT to manage its development in these particular areas (Meola, 2017). Standards There is lack of open standards in IoT for devices that are connected with it. Every device follows its own standards to transfer data over network. This thing causes conflicts in transferring data over different networks and it enhances chances of hacking attacks for its users. Problems of Internet of Things Besides above discussed challenges of Internet of Things, there are some problems of IoT that are necessary to discuss in this report (Olavsrud, 2017). The major problem of IoT is related to its nature. The devices that are connected with IoT are from different data sets and different data streams. Therefore, there is risk in management of data due to this diversity in nature. The monitoring or tracking of devices is also an essential problem of IoT. Due to wide size of applications of IoT, it becomes difficult in some cases to monitor and track these devices. Due to this, it is difficult to identify security issues in these devices. Relevant Technologies In above segments of report we have discussed about challenges and problems of IoT. The resolution of these problem is necessary and to do this relevant technologies are required to use that are listed as below: The maintenance of security of network is one of relevant technologies for handling problem of IoT. To securely transfer large amount of data through multiple IoT devices, maintenance of network security is important. Here networking monitoring tools can provide help to achieve high level of security. Encryption is also an essential technique that can be used by IoT for data security. By using encryption technique, whole data can be encrypted into unreadable form that is difficult for hackers to guess (Prophet Thinking, 2017). The authentication technique is also relevant to use for security purpose. If all devices that are IoT will be authorized for users with login credentials then risk of unauthorized access will be reduced (com, 2017). Applications of Technologies The above discussed relevant technologies can be used in every industry or company where IoT devices are used. The technologies will be helpful to maintain security and privacy of databases and networks into these companies and industries (Datamation.com, 2017). Clarification about Vague Areas and Research Questions In field of IoT, people have confusion about some points and during research we found queries of IoT users regarding its vague areas that are listed as below: Question 1: What is Interesting use of IoT? Answer: According to analysis, we got to know that the most interesting use of IoT is use of sensors. These sensors can be used to sense infective awareness in cities. Question 2: What are important factors to increased benefits of IoT? Answer: The most important factor of IoT that contributes to increase benefits of IoT is interoperability. Interoperability is required for programming of devices and sensors that have capability to handle connected devices (Forbes.com, 2017). Discussion It is an important segment of this report and here we will discuss in detail about issues of Internet of Things (IoT). Issues of IoT discussed in Forum The main issues of IoT that we have noticed in forum are related to security, privacy, standards and development. It is responsibility of IoT developers to monitor and control these issues of security and privacy by doing all potential efforts. Besides this issue, another important issue that we would like to discuss in this forum is of data breaching. This issue of security occurs due to physical inaccuracy of IoT infrastructure. If infrastructure will not be strong then it becomes easier for hackers to breach information by using hacking, phishing and malware attacks. Besides this, physical inaccuracy of IoT infrastructure also increases repetition access of data and high risk of security violation (Prophet Thinking, 2017). Discussion about Issues that is not discussed in this forum Various essential issues of IoT are discussed in this report that have become challenge to control or manage by IoT developers. There is also an essential reason that is not considered in forum is related to storage of data. Multiple devices are connected with Internet of Things (IoT) and huge data is transferred from different devices. If storage of data will not be done properly then it may cause conflicts in management and access of data. In this case, risk of insecurity will also be increased because cyber-criminals find opportunities to get weak storage system or network. With the increment in connected devices with IoT, this risk will be increased. To resolve this issue, some standards or policies are preset and according to these policies before storing any data, type of data and duration of requirement of data online will be checked. If data is no longer required then will be replaced. It means, only important information will be stored over IoT network (McKinsey Company, 20 17). Effect of discussed Issues and their Applications of Real Life The cyber-attacks on security and privacy on IoT devices and other threats and risk factors of security put great influence over real life of users. These devices contain personal and financial data of users in it. But if cyber-attacks will be implemented then users information will be affected. Hackers can access users information in unauthorized way by implementing cyber-attacks. If whole information will be lost then users will not trust to use IoT services and products. That is why, developers should use security tools and techniques to get rid of problems of security and privacy. This should be done at prior basis to keep trust of users or customers on IoT services (Network World, 2017). Important Lesson Learnt from above Discussion From above discussion we learnt that whether IoT is beneficial to use at workplaces or for personal usage, but if cannot provide proper security and privacy to its users then it will be useless and IT users will not prefer to work with this technology. With advancement in development of technology, area of security and privacy should also be maintained. The security professionals should concentrate on this essential point and also aware users about security and privacy maintenance at their own level. In this report, relevant technologies are discussed to control issues or challenges of IoT. The appropriate implementation of these technologies will be helpful to get high level security. The monitoring of network channels that are used to connect devices to IoT and for transferring data will be beneficial for developers to handle network problems (Mitchell, 2017). Conclusion At we conclude that it is an interesting discussion about security and privacy issues in Internet of Things. Through this discussion in this report, we got to know various essential points about IoT, its challenging factors and problems. The main point is application areas of IoT in different industries are required to be secured. This can be achieved with the help of advanced security tools and techniques. Otherwise, risk of loss of data will be increased. It is common that users do not care about security and privacy of their content while using a particular service. So it is responsibility of developers of that service to fully secure users content. This is an effective way to achieve high level security. References Datafloq.com. (2017). Three Major Challenges for the Internet of Things. Retrieved 13 May 2017, from https://datafloq.com/read/three-major-challenges-internet-of-things/83 Forbes.com. (2017). A Simple Explanation Of 'The Internet Of Things'. Retrieved 13 May 2017, from https://www.forbes.com/sites/jacobmorgan/2014/05/13/simple-explanation-internet-things-that-anyone-can-understand/#24a46e421d09 McKinsey Company. (2017). The Internet of Things. Retrieved 13 May 2017, from https://www.mckinsey.com/industries/high-tech/our-insights/the-internet-of-things Network World. (2017). Preparing for the Age of IoT. Retrieved 13 May 2017, from https://www.networkworld.com/article/3026315/internet-of-things/6-critical-issues-facing-the-internet-of-things.html IoT Agenda. (2017). What is Internet of Things (IoT)? - Definition from WhatIs.com. Retrieved 13 May 2017, from https://internetofthingsagenda.techtarget.com/definition/Internet-of-Things-IoT Meola, A. (2017). What is the Internet of Things (IoT)?. Business Insider. Retrieved 13 May 2017, from https://www.businessinsider.com/what-is-the-internet-of-things-definition-2016-8?IR=T Datamation.com.(2017). The Internet of Things: 7 Challenges - Datamation. Retrieved 13 May 2017, from https://www.datamation.com/data-center/the-internet-of-things-7-challenges.html Forbes.com. (2017). Forbes Welcome. Retrieved 13 May 2017, from https://www.forbes.com/sites/gilpress/2017/03/20/6-hot-internet-of-things-iot-security-technologies/#480bac6e1b49 Roe, D. (2017). 7 Big Problems with the Internet of Things. CMSWire.com. Retrieved 13 May 2017, from https://www.cmswire.com/cms/internet-of-things/7-big-problems-with-the-internet-of-things-024571.php Datamation.com. (2017). The Internet of Things: 7 Challenges - Datamation. Retrieved 13 May 2017, from https://www.datamation.com/data-center/the-internet-of-things-7-challenges.html Mitchell, R. (2017). 5 challenges of the Internet of Things | APNIC Blog. APNIC Blog. Retrieved 13 May 2017, from https://blog.apnic.net/2015/10/20/5-challenges-of-the-internet-of-things/ Prophet Thinking. (2017). Interoperability: The Challenge Facing the Internet of Things | Altimeter. Retrieved 13 May 2017, from https://www.prophet.com/thinking/2014/02/interoperability-the-challenge-facing-the-internet-of-things/ McKinsey Company. (2017). The Internet of Things: Five critical questions. Retrieved 13 May 2017, from https://www.mckinsey.com/industries/high-tech/our-insights/the-internet-of-things-five-critical-questions Olavsrud, T. (2017). 5 Key Challenges Facing the Industrial Internet of Things. CIO. Retrieved 13 May 2017, from https://www.cio.com/article/2872574/it-industry/5-key-challenges-facing-the-industrial-internet-of-things.html Security and Privacy Issues in Internet of Things – Free Samples Question: Discuss about the Security and Privacy Issues in Internet of Things. Answer: Introduction IoT is an abbreviation for Internet of Things and it is an umbrella that connects a number of different components to come up with an integrated and advanced application. The components that are involved in an IoT application include technologies, processes, networks, devices, appliances and people. Some of the interesting IoT applications that have already been implemented include home automation, office automation, smart parking applications and many more (Bhabad, 2015). Such an integration of all the components has brought a lot many advantages for the users as well as for the systems. Along with the benefits, there are also some of the risks and drawbacks that are also associated with IoT apps. Research Questions What are the several types of the security threats and risks in association with the applications that are based on IoT concept? What are the information properties that may have an impact due to these issues? What is the level of impact that can result out from the occurrence of a security risk? What are the applicable countermeasures that may be implemented in order to put a check on the security threats? Is it necessary to implement and look after the condition of physical security in association with an IoT app? Security and Privacy Issues: Confidentiality Attacks Eavesdropping The components that are involved in an IoT application include technologies, processes, networks, devices, appliances and people. Due to the presence of these components, there are several access and entry points that may be used for eavesdropping (Wood, 2016). Unauthorized Tracking Information does not stay at one point or location in an IoT application. It rather travels from one place to the other which leads to the emergence of a security risk related with unauthorized tracking of the exchange taking place. Data Mining Attacks Business Intelligence concepts are significant in association with IoT and data mining is one technology that holds a lot of importance. There are however numerous security attacks related to data mining that may be executed (Amato, 2016). Reconstruction Attacks Information may also be given a new shape which may lead to the loss of its meaning and value. These attacks are termed as the reconstruction attacks. Integrity Attacks Message Alteration Information integrity is one of the essential properties of the IoT application and it is necessary to allow only the authorized resources to make changes in the information. However, regular attempts are made to violate the integrity of the information by altering the messages that are transferred between the entities (Microsoft, 2016). Media Alteration Information integrity is one of the essential properties of the IoT application and it is necessary to allow only the authorized resources to make changes in the information. However, regular attempts are made to violate the integrity of the information by altering the media that is transferred between the entities (Aws, 2016). Availability Attacks Flooding Attacks Application availability on a non-stop basis is a must for experiencing enhanced user satisfaction. There are several flooding attacks that are given shape by the attackers to violate this property of information and application. Garbage data is introduced across the application channels to degrade its performance and availability (Nichols, 2016). Server Impersonating IoT applications involve many servers due to the presence of several components. Attackers make use of the form of attack as server impersonation to negatively impact the application availability. QoS Abuse Application quality and quality of all the associated services is essential for the applications. There are scenarios wherein Quality of Service (QoS) is degraded and abused by introducing several malware on the system (Panetta, 2016). Discussion with Peers Discussion on the security issues and threats with peers was done to understand their views and two of peers with details as ABC, Male, 32 and XYZ, Female 38 were involved in the discussion. They were also concerned with the issues around phishing and spoofing which have not been covered in the list of issues presented above. Apart from these two risks, there were similar problems that were discussed in terms of confidentiality attacks, integrity attacks and availability attacks. The discussion enabled the participants in the understanding of the security issues in a broader manner with enhancement of knowledge around the same. Impact of the Issues in Real Life Application availability on a non-stop basis is a must for experiencing enhanced user satisfaction. There are several attacks that are given shape by the attackers to violate this property of information and application. It is because of these attacks that the customer engagement and trust is violated and impacted. There can be legal consequences that may result from the occurrence of a security attack as the information properties get violated in case of a risk or an attack (Mahmoud, 2015). An organization is considered to deliver good performance only when there are minimum security risks reported. The frequency also decides the reputation of the organization in the market. However, the same gets violated if there are frequent attacks that take place. The impact is also considerable on the revenues and profits that are associated with the organization (Ko Dorantes, 2016). Lessons Learnt The most important lesson that was acquired from the discussion was the importance and significance of information in real life. Attacks on information can prove to be fatal and the measures that may be taken to prevent and avoid these attacks were also understood with the medium of discussion that was carried out. Countermeasures The countermeasures that can be applied to put a check on the security risks and issues are classified in different categories. There may be preventive measures, control measures, measures for detection and avoidance measures that can be taken to make sure that the risks and threats are avoided. The impact that results out of any of the availability attack is huge and therefore it is necessary to prevent these attacks. Prevention of these attacks can be done by implementation of anti-denial tools in the application itself that will nullify all the attempts of execution of the availability attacks on the system. It is essential to allow only the authenticated entities to access the application along with its back-end. Therefore, two-fold authentication shall be used along with other relevant measures (Lu, 2014). Network security shall be upgraded with the use of advanced tools and applications to track the activities on the network. These tools shall include the network monitoring tools, network reporting tools, network auditing tools and likewise. Cryptography is one of the advanced security measure that shall be applied in this case as it will convert all the information related with the IoT application in the form of cipher text which will be converted to its original form only with the use of a key. There are several packages that are available in the market for the detection and prevention of intruders on the application which shall be installed by the system experts to have a non-stop view of the activities on the application. Security of the devices and the appliances that are involved in the IoT application is required as these devices can be considered as a primary threat agent. Upgrading of the devices shall be done regularly. Also, the loss of the devices and appliances shall not take place. There shall also be enhancement done to the legal policies that are set up for the information and web application security. Basic measures to security shall never be ignored as it is these measures that ensure that the overall security architecture is strong and efficient enough to fight the security risks and attacks. Role of Physical Security There are several devices and appliances that are involved in the functioning and integration of the IoT applications. Physical security of these devices and appliances would be essential as the loss or damage to the device will directly impact the application and its performance. Physical security can be set up by making the users aware of the dangers that the loss of device will put on their information. Also, there shall be enhanced security on all the entry and exit points such as those for the data centres or network stations (Jing, 2014). Conclusion IoT is an umbrella that connects a number of different components to come up with an integrated and advanced application. The components that are involved in an IoT application include technologies, processes, networks, devices, appliances and people. There are several security risks and attacks that are possible on the IoT applications that may have a negative impact on the information and application availability, integrity and confidentiality. There can also be legal consequences that may result from the occurrence of a security attack as the information properties get violated in case of a risk or an attack. A particular organization is considered to deliver good performance only when there are minimum security risks reported. The frequency also decides the reputation of the organization in the market. However, the same gets violated if there are frequent attacks that take place. The countermeasures that can be applied to put a check on the security risks and issues are classifie d in different categories. There may be preventive measures, control measures, measures for detection and avoidance measures that can be taken to make sure that the risks and threats are avoided. There are several devices and appliances that are involved in the functioning and integration of the IoT applications. Physical security of these devices and appliances would be essential as the loss or damage to the device will directly impact the application and its performance. References Amato, N. (2016). The hidden costs of a data breach. Journal of Accountancy. Retrieved 3 May 2017, from https://www.journalofaccountancy.com/news/2016/jul/hidden-costs-of-data-breach-201614870.html Aws,. (2016). Overview of Security Processes. Retrieved 3 May 2017, from https://d0.awsstatic.com/whitepapers/aws-security-whitepaper.pdf Bhabad, M. (2015). Internet of Things: Architecture, Security Issues and Countermeasures. Retrieved 3 May 2017, from https://www.ijcaonline.org/research/volume125/number14/bhabad-2015-ijca-906251.pdf Jing, Q. (2014). Security of the Internet of Things: perspectives and challenges. Retrieved 3 May 2017, from https://csi.dgist.ac.kr/uploads/Seminar/1407_IoT_SSH.pdf Ko, M. Dorantes, C. (2016). The impact of information security breaches on financial performance of the breached firms: An empirical investigation. Retrieved 3 May 2017, from https://jitm.ubalt.edu/XVII-2/article2.pdf Lu, C. (2014). Overview of Security and Privacy Issues in the Internet of Things. Retrieved 3 May 2017, from https://www.cse.wustl.edu/~jain/cse574-14/ftp/security.pdf Mahmoud, R. (2015). Internet of things (IoT) security: Current status, challenges and prospective measures - IEEE Xplore Document. Ieeexplore.ieee.org. Retrieved 3 May 2017, from https://ieeexplore.ieee.org/document/7412116/ Microsoft,. (2016). Microsoft Core Infrastructure Optimization: IT Security Processes - Best Practices for Business IT. Microsoft.com. Retrieved 3 May 2017, from https://www.microsoft.com/india/infrastructure/capabilities/itprocesses.mspx Nichols, A. (2016). A Perspective on Threats in the Risk Analysis Process. Sans.org. Retrieved 3 May 2017, from https://www.sans.org/reading-room/whitepapers/auditing/perspective-threats-risk-analysis-process-63 Panetta, K. (2016). Gartner's Top 10 Security Predictions 2016 - Smarter With Gartner. Smarter With Gartner. Retrieved 3 May 2017, from https://www.gartner.com/smarterwithgartner/top-10-security-predictions-2016/ Wood, P. (2016). Social hacking: The easy way to breach network security. ComputerWeekly. Retrieved 3 May 2017, from https://www.computerweekly.com/tip/Social-hacking-The-easy-way-to-breach-network-security

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.